Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: How do I remove remote root logins on Linux Fedora core 2

How do I remove remote root logins on Linux Fedora core 2 13 years 7 months ago #5965

  • jacko0
  • jacko0's Avatar Topic Author
  • Offline
  • Frequent Member
  • Frequent Member
  • Posts: 45
  • Thank you received: 0
How do I remove remote root logins on Fedora core 2, I want to be able to login using SSH but disable the root access except via "su".


Thanks


Jacko

Please Log in to join the conversation.

Re: How do I remove remote root logins on Linux Fedora core 2 13 years 7 months ago #5966

  • nske
  • nske's Avatar
  • Offline
  • Expert Member
  • Expert Member
  • Posts: 613
  • Thank you received: 0
[code:1]PermitRootLogin no[/code:1]
at your sshd_config.

Please Log in to join the conversation.

Re: How do I remove remote root logins on Linux Fedora core 2 13 years 7 months ago #5968

May I recommend a couple of other measures..

Firstly, authenticate only using public / private keys rather than passphrase authentication.. as you said, login as a regular user and then gain privilege...

Furthermore you might want to consider using 'sudo' rather than su.. 'sudo' will allow you much more granularity, and you will only run as root for the duration of a task.. far less chance of doing something wrong.

Please Log in to join the conversation.

Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com

Re: How do I remove remote root logins on Linux Fedora core 2 13 years 7 months ago #5975

  • jacko0
  • jacko0's Avatar Topic Author
  • Offline
  • Frequent Member
  • Frequent Member
  • Posts: 45
  • Thank you received: 0
I have set etc/sshd_config to:

#PermitRootLogin no

But i can still log in as root! :?

The public / private keys sound a good idea, do u have any info regarding the use and setup of that?

The main problem is that i checked my messages log and 2 different ip's are trying to hack into my pc!

thanks

Please Log in to join the conversation.

Re: How do I remove remote root logins on Linux Fedora core 2 13 years 7 months ago #5980

  • nske
  • nske's Avatar
  • Offline
  • Expert Member
  • Expert Member
  • Posts: 613
  • Thank you received: 0
"#" means that what follows is a comment and will not be interpreted.

about public key auth method on openssh, check
cfm.gs.washington.edu/security/ssh/client-pkauth/

Don't worry too much about failed login attempts, they are usually caused by mass-range scan & try scripts from scriptkiddies. They will try 2-3 common account combinations and go on.. ;)

Please Log in to join the conversation.

Re: How do I remove remote root logins on Linux Fedora core 2 13 years 7 months ago #5981

Don't worry bout those scans.. as nske said, we all see them.. they try some logins like admin, temp etc etc.. if you switch to public key they wont be able to do anything at all.

Please Log in to join the conversation.

Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com
Time to create page: 0.165 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup